GNOME Files silently extracts setuid files from ZIP archives

Read Time:28 Second

Posted by Georgi Guninski on Aug 07

Affected: GNOME Files 43.4 (nautilus) on fedora 37

Description:

If an user A opens in GNOME files zip archive containing
`setuid` file F, then F will be silently extracted to
a subdirectory of CWD.

If F is accessible by hostile local user B and B executes F,
then F will be executed as from user A.

tar(1) and unzip(1) are not vulnerable to this attack.

Session for creating the ZIP.
After that just open f.zip in GNOME files.
<pre>…

podman-tui-1.5.0-2.el9

FEDORA-EPEL-2025-7c57e75cbc Packages in this update: podman-tui-1.5.0-2.el9 Update description: release v1.5.0 Read More

April 11, 2025

prometheus-podman-exporter-1.16.0-1.fc42

FEDORA-2025-12ac4e9cfd Packages in this update: prometheus-podman-exporter-1.16.0-1.fc42 Update description: release v1.16.0 Read More

April 11, 2025

prometheus-podman-exporter-1.16.0-1.fc41

FEDORA-2025-b0915f0a19 Packages in this update: prometheus-podman-exporter-1.16.0-1.fc41 Update description: release v1.16.0 Read More

April 11, 2025

prometheus-podman-exporter-1.16.0-1.el9

FEDORA-EPEL-2025-6653a27cfd Packages in this update: prometheus-podman-exporter-1.16.0-1.el9 Update description: release 1.16.0 Read More

April 11, 2025

jupyterlab-4.4.0-1.fc40 python-notebook-7.4.0-1.fc40

FEDORA-2025-5ea8e7d744 Packages in this update: jupyterlab-4.4.0-1.fc40 python-notebook-7.4.0-1.fc40 Update description: New jupyterlab and notebook Read More

April 11, 2025

jupyterlab-4.4.0-1.fc41 python-notebook-7.4.0-1.fc41

FEDORA-2025-e15a193ad3 Packages in this update: jupyterlab-4.4.0-1.fc41 python-notebook-7.4.0-1.fc41 Update description: New jupyterlab and notebook Read More

April 11, 2025

Ransomware reaches a record high, but payouts are dwindling

Cyble Urges Critical Vulnerability Fixes Affecting Industrial Systems

Reimagining Democracy

China-based SMS Phishing Triad Pivots to Banks

Google Cloud: China Achieves “Cyber Superpower” Status

Google Cloud: CISOs Demand Simplified Security Tools Amid Growing Tech Complexity

Over 40% of UK Businesses Faced Cybersecurity Breaches in 2024

SpyNote Malware Targets Android Users with Fake Google Play Pages

AI-Powered AkiraBot Evades CAPTCHA to Spam 80,000 Websites

GNOME Files silently extracts setuid files from ZIP archives

podman-tui-1.5.0-2.el9

prometheus-podman-exporter-1.16.0-1.fc42

prometheus-podman-exporter-1.16.0-1.fc41

prometheus-podman-exporter-1.16.0-1.el9

jupyterlab-4.4.0-1.fc40 python-notebook-7.4.0-1.fc40

jupyterlab-4.4.0-1.fc41 python-notebook-7.4.0-1.fc41